./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec2_product64.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 8393723b Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec2_product64.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 59d05b45c2855b02eb92cf6428285b3e4820a09d46d6a6d0a0748347de3adbb6 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-8393723 [2022-11-19 08:06:45,629 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-19 08:06:45,631 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-19 08:06:45,651 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-19 08:06:45,652 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-19 08:06:45,653 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-19 08:06:45,654 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-19 08:06:45,656 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-19 08:06:45,658 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-19 08:06:45,660 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-19 08:06:45,661 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-19 08:06:45,662 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-19 08:06:45,663 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-19 08:06:45,664 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-19 08:06:45,665 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-19 08:06:45,667 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-19 08:06:45,668 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-19 08:06:45,669 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-19 08:06:45,671 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-19 08:06:45,673 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-19 08:06:45,674 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-19 08:06:45,676 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-19 08:06:45,677 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-19 08:06:45,679 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-19 08:06:45,683 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-19 08:06:45,683 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-19 08:06:45,684 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-19 08:06:45,685 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-19 08:06:45,685 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-19 08:06:45,686 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-19 08:06:45,687 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-19 08:06:45,688 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-19 08:06:45,689 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-19 08:06:45,690 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-19 08:06:45,691 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-19 08:06:45,691 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-19 08:06:45,692 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-19 08:06:45,692 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-19 08:06:45,693 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-19 08:06:45,694 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-19 08:06:45,695 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-19 08:06:45,696 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-19 08:06:45,720 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-19 08:06:45,720 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-19 08:06:45,720 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-19 08:06:45,721 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-19 08:06:45,721 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-19 08:06:45,722 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-19 08:06:45,722 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-19 08:06:45,722 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-19 08:06:45,723 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-19 08:06:45,723 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-19 08:06:45,723 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-19 08:06:45,724 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-19 08:06:45,724 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-19 08:06:45,724 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-19 08:06:45,724 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-19 08:06:45,725 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-19 08:06:45,725 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-19 08:06:45,725 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-19 08:06:45,726 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-19 08:06:45,726 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-19 08:06:45,727 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-19 08:06:45,727 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-19 08:06:45,727 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-19 08:06:45,728 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-19 08:06:45,728 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-19 08:06:45,728 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-19 08:06:45,728 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-19 08:06:45,729 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-19 08:06:45,729 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-19 08:06:45,729 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-19 08:06:45,730 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-19 08:06:45,730 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-19 08:06:45,730 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-19 08:06:45,731 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-19 08:06:45,731 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-19 08:06:45,731 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-19 08:06:45,731 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-19 08:06:45,732 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-19 08:06:45,732 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-19 08:06:45,732 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-19 08:06:45,732 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-19 08:06:45,733 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 59d05b45c2855b02eb92cf6428285b3e4820a09d46d6a6d0a0748347de3adbb6 [2022-11-19 08:06:46,009 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-19 08:06:46,043 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-19 08:06:46,046 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-19 08:06:46,047 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-19 08:06:46,049 INFO L275 PluginConnector]: CDTParser initialized [2022-11-19 08:06:46,050 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/../../sv-benchmarks/c/product-lines/minepump_spec2_product64.cil.c [2022-11-19 08:06:46,135 INFO L220 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/data/29d2440b6/60051a52c33c432b856ad0ce732b511d/FLAGab1710bb7 [2022-11-19 08:06:46,758 INFO L306 CDTParser]: Found 1 translation units. [2022-11-19 08:06:46,758 INFO L160 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/sv-benchmarks/c/product-lines/minepump_spec2_product64.cil.c [2022-11-19 08:06:46,782 INFO L349 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/data/29d2440b6/60051a52c33c432b856ad0ce732b511d/FLAGab1710bb7 [2022-11-19 08:06:47,043 INFO L357 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/data/29d2440b6/60051a52c33c432b856ad0ce732b511d [2022-11-19 08:06:47,046 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-19 08:06:47,047 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-19 08:06:47,053 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-19 08:06:47,053 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-19 08:06:47,057 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-19 08:06:47,058 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,060 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@7defffa8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47, skipping insertion in model container [2022-11-19 08:06:47,061 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,069 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-19 08:06:47,117 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-19 08:06:47,352 WARN L234 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/sv-benchmarks/c/product-lines/minepump_spec2_product64.cil.c[6823,6836] [2022-11-19 08:06:47,415 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-19 08:06:47,424 INFO L203 MainTranslator]: Completed pre-run [2022-11-19 08:06:47,453 WARN L234 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/sv-benchmarks/c/product-lines/minepump_spec2_product64.cil.c[6823,6836] [2022-11-19 08:06:47,496 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-19 08:06:47,515 INFO L208 MainTranslator]: Completed translation [2022-11-19 08:06:47,515 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47 WrapperNode [2022-11-19 08:06:47,516 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-19 08:06:47,517 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-19 08:06:47,517 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-19 08:06:47,517 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-19 08:06:47,526 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,538 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,566 INFO L138 Inliner]: procedures = 60, calls = 108, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 228 [2022-11-19 08:06:47,567 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-19 08:06:47,567 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-19 08:06:47,568 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-19 08:06:47,568 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-19 08:06:47,578 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,579 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,581 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,582 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,588 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,595 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,596 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,598 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,601 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-19 08:06:47,602 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-19 08:06:47,602 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-19 08:06:47,603 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-19 08:06:47,604 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (1/1) ... [2022-11-19 08:06:47,629 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-19 08:06:47,641 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:06:47,657 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-19 08:06:47,671 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-19 08:06:47,704 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-19 08:06:47,704 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-19 08:06:47,704 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-19 08:06:47,704 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-19 08:06:47,704 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-19 08:06:47,705 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2022-11-19 08:06:47,705 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2022-11-19 08:06:47,705 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-19 08:06:47,705 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-19 08:06:47,705 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-19 08:06:47,705 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-19 08:06:47,706 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-19 08:06:47,706 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-19 08:06:47,706 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2022-11-19 08:06:47,706 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2022-11-19 08:06:47,706 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2022-11-19 08:06:47,707 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2022-11-19 08:06:47,707 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-11-19 08:06:47,707 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-11-19 08:06:47,707 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-19 08:06:47,707 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-19 08:06:47,707 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-19 08:06:47,708 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-19 08:06:47,708 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-19 08:06:47,793 INFO L235 CfgBuilder]: Building ICFG [2022-11-19 08:06:47,796 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-19 08:06:48,233 INFO L276 CfgBuilder]: Performing block encoding [2022-11-19 08:06:48,314 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-19 08:06:48,315 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-19 08:06:48,317 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 19.11 08:06:48 BoogieIcfgContainer [2022-11-19 08:06:48,318 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-19 08:06:48,319 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-19 08:06:48,320 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-19 08:06:48,333 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-19 08:06:48,333 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 19.11 08:06:47" (1/3) ... [2022-11-19 08:06:48,334 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5a731201 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 19.11 08:06:48, skipping insertion in model container [2022-11-19 08:06:48,334 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:06:47" (2/3) ... [2022-11-19 08:06:48,335 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5a731201 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 19.11 08:06:48, skipping insertion in model container [2022-11-19 08:06:48,335 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 19.11 08:06:48" (3/3) ... [2022-11-19 08:06:48,336 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec2_product64.cil.c [2022-11-19 08:06:48,357 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-19 08:06:48,357 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-19 08:06:48,438 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-19 08:06:48,451 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2a1e694, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-19 08:06:48,451 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-19 08:06:48,456 INFO L276 IsEmpty]: Start isEmpty. Operand has 80 states, 49 states have (on average 1.4285714285714286) internal successors, (70), 60 states have internal predecessors, (70), 19 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 14 states have call predecessors, (19), 19 states have call successors, (19) [2022-11-19 08:06:48,468 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2022-11-19 08:06:48,469 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:06:48,469 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:06:48,470 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:06:48,477 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:06:48,478 INFO L85 PathProgramCache]: Analyzing trace with hash 399646742, now seen corresponding path program 1 times [2022-11-19 08:06:48,488 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:06:48,488 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [456119603] [2022-11-19 08:06:48,489 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:06:48,489 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:06:48,621 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:06:48,681 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:06:48,682 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:06:48,683 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [456119603] [2022-11-19 08:06:48,683 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [456119603] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:06:48,684 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:06:48,684 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-19 08:06:48,685 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1373134131] [2022-11-19 08:06:48,686 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:06:48,714 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-19 08:06:48,714 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:06:48,786 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-19 08:06:48,787 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-19 08:06:48,790 INFO L87 Difference]: Start difference. First operand has 80 states, 49 states have (on average 1.4285714285714286) internal successors, (70), 60 states have internal predecessors, (70), 19 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 14 states have call predecessors, (19), 19 states have call successors, (19) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:06:48,881 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:06:48,882 INFO L93 Difference]: Finished difference Result 158 states and 217 transitions. [2022-11-19 08:06:48,883 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-19 08:06:48,884 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2022-11-19 08:06:48,885 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:06:48,903 INFO L225 Difference]: With dead ends: 158 [2022-11-19 08:06:48,903 INFO L226 Difference]: Without dead ends: 75 [2022-11-19 08:06:48,907 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-19 08:06:48,910 INFO L413 NwaCegarLoop]: 86 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 86 SdHoareTripleChecker+Invalid, 20 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-19 08:06:48,911 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 86 Invalid, 20 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-19 08:06:48,926 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 75 states. [2022-11-19 08:06:48,951 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 75 to 75. [2022-11-19 08:06:48,953 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 75 states, 46 states have (on average 1.3478260869565217) internal successors, (62), 56 states have internal predecessors, (62), 19 states have call successors, (19), 10 states have call predecessors, (19), 9 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2022-11-19 08:06:48,956 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 75 states to 75 states and 99 transitions. [2022-11-19 08:06:48,958 INFO L78 Accepts]: Start accepts. Automaton has 75 states and 99 transitions. Word has length 17 [2022-11-19 08:06:48,958 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:06:48,958 INFO L495 AbstractCegarLoop]: Abstraction has 75 states and 99 transitions. [2022-11-19 08:06:48,959 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:06:48,959 INFO L276 IsEmpty]: Start isEmpty. Operand 75 states and 99 transitions. [2022-11-19 08:06:48,961 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2022-11-19 08:06:48,961 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:06:48,962 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:06:48,962 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-19 08:06:48,962 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:06:48,963 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:06:48,963 INFO L85 PathProgramCache]: Analyzing trace with hash -426351573, now seen corresponding path program 1 times [2022-11-19 08:06:48,963 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:06:48,964 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1538789859] [2022-11-19 08:06:48,964 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:06:48,964 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:06:48,981 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:06:49,080 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:06:49,081 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:06:49,081 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1538789859] [2022-11-19 08:06:49,081 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1538789859] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:06:49,081 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:06:49,082 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-19 08:06:49,082 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [942921074] [2022-11-19 08:06:49,082 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:06:49,083 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-19 08:06:49,084 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:06:49,084 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-19 08:06:49,085 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 08:06:49,085 INFO L87 Difference]: Start difference. First operand 75 states and 99 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:06:49,135 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:06:49,135 INFO L93 Difference]: Finished difference Result 122 states and 160 transitions. [2022-11-19 08:06:49,135 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-19 08:06:49,136 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2022-11-19 08:06:49,136 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:06:49,137 INFO L225 Difference]: With dead ends: 122 [2022-11-19 08:06:49,138 INFO L226 Difference]: Without dead ends: 67 [2022-11-19 08:06:49,139 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 08:06:49,140 INFO L413 NwaCegarLoop]: 72 mSDtfsCounter, 14 mSDsluCounter, 56 mSDsCounter, 0 mSdLazyCounter, 28 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 128 SdHoareTripleChecker+Invalid, 28 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 28 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-19 08:06:49,141 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 128 Invalid, 28 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 28 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-19 08:06:49,141 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 67 states. [2022-11-19 08:06:49,156 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 67 to 67. [2022-11-19 08:06:49,157 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 67 states, 41 states have (on average 1.3658536585365855) internal successors, (56), 51 states have internal predecessors, (56), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 11 states have call predecessors, (16), 16 states have call successors, (16) [2022-11-19 08:06:49,159 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 67 states to 67 states and 88 transitions. [2022-11-19 08:06:49,167 INFO L78 Accepts]: Start accepts. Automaton has 67 states and 88 transitions. Word has length 18 [2022-11-19 08:06:49,167 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:06:49,167 INFO L495 AbstractCegarLoop]: Abstraction has 67 states and 88 transitions. [2022-11-19 08:06:49,168 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:06:49,168 INFO L276 IsEmpty]: Start isEmpty. Operand 67 states and 88 transitions. [2022-11-19 08:06:49,169 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2022-11-19 08:06:49,169 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:06:49,169 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:06:49,170 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-19 08:06:49,170 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:06:49,170 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:06:49,170 INFO L85 PathProgramCache]: Analyzing trace with hash 1669276041, now seen corresponding path program 1 times [2022-11-19 08:06:49,171 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:06:49,171 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [388155898] [2022-11-19 08:06:49,171 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:06:49,171 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:06:49,203 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:06:49,367 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:06:49,367 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:06:49,368 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [388155898] [2022-11-19 08:06:49,368 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [388155898] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:06:49,368 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:06:49,368 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-19 08:06:49,368 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [739312589] [2022-11-19 08:06:49,369 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:06:49,369 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-19 08:06:49,369 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:06:49,370 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-19 08:06:49,370 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-19 08:06:49,370 INFO L87 Difference]: Start difference. First operand 67 states and 88 transitions. Second operand has 4 states, 4 states have (on average 4.5) internal successors, (18), 4 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:06:49,480 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:06:49,481 INFO L93 Difference]: Finished difference Result 166 states and 218 transitions. [2022-11-19 08:06:49,481 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-19 08:06:49,481 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 4.5) internal successors, (18), 4 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 21 [2022-11-19 08:06:49,482 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:06:49,483 INFO L225 Difference]: With dead ends: 166 [2022-11-19 08:06:49,491 INFO L226 Difference]: Without dead ends: 101 [2022-11-19 08:06:49,492 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-19 08:06:49,493 INFO L413 NwaCegarLoop]: 82 mSDtfsCounter, 111 mSDsluCounter, 95 mSDsCounter, 0 mSdLazyCounter, 47 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 115 SdHoareTripleChecker+Valid, 177 SdHoareTripleChecker+Invalid, 56 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 47 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 08:06:49,493 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [115 Valid, 177 Invalid, 56 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 47 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 08:06:49,494 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 101 states. [2022-11-19 08:06:49,518 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 101 to 98. [2022-11-19 08:06:49,529 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 98 states, 62 states have (on average 1.3709677419354838) internal successors, (85), 75 states have internal predecessors, (85), 21 states have call successors, (21), 14 states have call predecessors, (21), 14 states have return successors, (22), 15 states have call predecessors, (22), 21 states have call successors, (22) [2022-11-19 08:06:49,531 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 98 states to 98 states and 128 transitions. [2022-11-19 08:06:49,532 INFO L78 Accepts]: Start accepts. Automaton has 98 states and 128 transitions. Word has length 21 [2022-11-19 08:06:49,532 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:06:49,532 INFO L495 AbstractCegarLoop]: Abstraction has 98 states and 128 transitions. [2022-11-19 08:06:49,532 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 4.5) internal successors, (18), 4 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:06:49,532 INFO L276 IsEmpty]: Start isEmpty. Operand 98 states and 128 transitions. [2022-11-19 08:06:49,534 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2022-11-19 08:06:49,534 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:06:49,534 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:06:49,534 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-19 08:06:49,535 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:06:49,535 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:06:49,535 INFO L85 PathProgramCache]: Analyzing trace with hash 873917752, now seen corresponding path program 1 times [2022-11-19 08:06:49,535 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:06:49,536 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [171517833] [2022-11-19 08:06:49,536 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:06:49,536 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:06:49,568 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:06:49,767 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:06:49,768 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:06:49,768 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [171517833] [2022-11-19 08:06:49,768 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [171517833] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:06:49,768 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:06:49,769 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-11-19 08:06:49,769 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1534653908] [2022-11-19 08:06:49,769 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:06:49,770 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-11-19 08:06:49,770 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:06:49,770 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-11-19 08:06:49,771 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2022-11-19 08:06:49,771 INFO L87 Difference]: Start difference. First operand 98 states and 128 transitions. Second operand has 6 states, 5 states have (on average 4.2) internal successors, (21), 4 states have internal predecessors, (21), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:06:50,008 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:06:50,008 INFO L93 Difference]: Finished difference Result 286 states and 379 transitions. [2022-11-19 08:06:50,009 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2022-11-19 08:06:50,009 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 4.2) internal successors, (21), 4 states have internal predecessors, (21), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 24 [2022-11-19 08:06:50,009 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:06:50,012 INFO L225 Difference]: With dead ends: 286 [2022-11-19 08:06:50,012 INFO L226 Difference]: Without dead ends: 190 [2022-11-19 08:06:50,013 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2022-11-19 08:06:50,015 INFO L413 NwaCegarLoop]: 86 mSDtfsCounter, 64 mSDsluCounter, 292 mSDsCounter, 0 mSdLazyCounter, 122 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 378 SdHoareTripleChecker+Invalid, 123 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 122 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-19 08:06:50,016 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 378 Invalid, 123 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 122 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-19 08:06:50,017 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 190 states. [2022-11-19 08:06:50,058 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 190 to 182. [2022-11-19 08:06:50,059 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 182 states, 115 states have (on average 1.3478260869565217) internal successors, (155), 138 states have internal predecessors, (155), 40 states have call successors, (40), 26 states have call predecessors, (40), 26 states have return successors, (42), 28 states have call predecessors, (42), 40 states have call successors, (42) [2022-11-19 08:06:50,061 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 182 states to 182 states and 237 transitions. [2022-11-19 08:06:50,061 INFO L78 Accepts]: Start accepts. Automaton has 182 states and 237 transitions. Word has length 24 [2022-11-19 08:06:50,062 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:06:50,062 INFO L495 AbstractCegarLoop]: Abstraction has 182 states and 237 transitions. [2022-11-19 08:06:50,062 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 4.2) internal successors, (21), 4 states have internal predecessors, (21), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:06:50,062 INFO L276 IsEmpty]: Start isEmpty. Operand 182 states and 237 transitions. [2022-11-19 08:06:50,064 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 28 [2022-11-19 08:06:50,065 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:06:50,065 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:06:50,065 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-19 08:06:50,065 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:06:50,066 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:06:50,066 INFO L85 PathProgramCache]: Analyzing trace with hash -1954594010, now seen corresponding path program 1 times [2022-11-19 08:06:50,066 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:06:50,066 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [733475950] [2022-11-19 08:06:50,066 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:06:50,075 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:06:50,100 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:06:50,148 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:06:50,148 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:06:50,148 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [733475950] [2022-11-19 08:06:50,149 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [733475950] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:06:50,149 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:06:50,149 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-19 08:06:50,149 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [952959207] [2022-11-19 08:06:50,150 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:06:50,150 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-19 08:06:50,150 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:06:50,151 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-19 08:06:50,151 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 08:06:50,151 INFO L87 Difference]: Start difference. First operand 182 states and 237 transitions. Second operand has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-19 08:06:50,227 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:06:50,227 INFO L93 Difference]: Finished difference Result 278 states and 369 transitions. [2022-11-19 08:06:50,227 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-19 08:06:50,228 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 27 [2022-11-19 08:06:50,228 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:06:50,231 INFO L225 Difference]: With dead ends: 278 [2022-11-19 08:06:50,231 INFO L226 Difference]: Without dead ends: 276 [2022-11-19 08:06:50,232 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 08:06:50,233 INFO L413 NwaCegarLoop]: 87 mSDtfsCounter, 63 mSDsluCounter, 69 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 63 SdHoareTripleChecker+Valid, 156 SdHoareTripleChecker+Invalid, 38 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-19 08:06:50,234 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [63 Valid, 156 Invalid, 38 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-19 08:06:50,235 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 276 states. [2022-11-19 08:06:50,268 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 276 to 276. [2022-11-19 08:06:50,269 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 276 states, 174 states have (on average 1.3505747126436782) internal successors, (235), 209 states have internal predecessors, (235), 61 states have call successors, (61), 40 states have call predecessors, (61), 40 states have return successors, (70), 43 states have call predecessors, (70), 61 states have call successors, (70) [2022-11-19 08:06:50,271 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 276 states to 276 states and 366 transitions. [2022-11-19 08:06:50,272 INFO L78 Accepts]: Start accepts. Automaton has 276 states and 366 transitions. Word has length 27 [2022-11-19 08:06:50,272 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:06:50,272 INFO L495 AbstractCegarLoop]: Abstraction has 276 states and 366 transitions. [2022-11-19 08:06:50,273 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-19 08:06:50,273 INFO L276 IsEmpty]: Start isEmpty. Operand 276 states and 366 transitions. [2022-11-19 08:06:50,277 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 49 [2022-11-19 08:06:50,277 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:06:50,277 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:06:50,277 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-19 08:06:50,278 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:06:50,278 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:06:50,278 INFO L85 PathProgramCache]: Analyzing trace with hash 1568616714, now seen corresponding path program 1 times [2022-11-19 08:06:50,279 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:06:50,279 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1043144226] [2022-11-19 08:06:50,279 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:06:50,279 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:06:50,307 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:06:50,495 INFO L134 CoverageAnalysis]: Checked inductivity of 19 backedges. 17 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-19 08:06:50,495 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:06:50,495 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1043144226] [2022-11-19 08:06:50,495 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1043144226] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:06:50,496 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:06:50,496 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-11-19 08:06:50,496 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1641528207] [2022-11-19 08:06:50,496 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:06:50,497 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-11-19 08:06:50,498 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:06:50,499 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-11-19 08:06:50,499 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30 [2022-11-19 08:06:50,500 INFO L87 Difference]: Start difference. First operand 276 states and 366 transitions. Second operand has 6 states, 6 states have (on average 6.333333333333333) internal successors, (38), 6 states have internal predecessors, (38), 3 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2022-11-19 08:06:50,887 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:06:50,888 INFO L93 Difference]: Finished difference Result 735 states and 991 transitions. [2022-11-19 08:06:50,888 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-19 08:06:50,889 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 6.333333333333333) internal successors, (38), 6 states have internal predecessors, (38), 3 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) Word has length 48 [2022-11-19 08:06:50,889 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:06:50,897 INFO L225 Difference]: With dead ends: 735 [2022-11-19 08:06:50,897 INFO L226 Difference]: Without dead ends: 461 [2022-11-19 08:06:50,904 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=30, Invalid=60, Unknown=0, NotChecked=0, Total=90 [2022-11-19 08:06:50,913 INFO L413 NwaCegarLoop]: 80 mSDtfsCounter, 165 mSDsluCounter, 109 mSDsCounter, 0 mSdLazyCounter, 177 mSolverCounterSat, 99 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 166 SdHoareTripleChecker+Valid, 189 SdHoareTripleChecker+Invalid, 276 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 99 IncrementalHoareTripleChecker+Valid, 177 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-19 08:06:50,916 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [166 Valid, 189 Invalid, 276 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [99 Valid, 177 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-19 08:06:50,921 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 461 states. [2022-11-19 08:06:51,015 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 461 to 439. [2022-11-19 08:06:51,018 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 439 states, 287 states have (on average 1.2334494773519165) internal successors, (354), 313 states have internal predecessors, (354), 75 states have call successors, (75), 63 states have call predecessors, (75), 76 states have return successors, (112), 79 states have call predecessors, (112), 75 states have call successors, (112) [2022-11-19 08:06:51,024 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 439 states to 439 states and 541 transitions. [2022-11-19 08:06:51,025 INFO L78 Accepts]: Start accepts. Automaton has 439 states and 541 transitions. Word has length 48 [2022-11-19 08:06:51,025 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:06:51,025 INFO L495 AbstractCegarLoop]: Abstraction has 439 states and 541 transitions. [2022-11-19 08:06:51,025 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 6.333333333333333) internal successors, (38), 6 states have internal predecessors, (38), 3 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2022-11-19 08:06:51,026 INFO L276 IsEmpty]: Start isEmpty. Operand 439 states and 541 transitions. [2022-11-19 08:06:51,033 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 83 [2022-11-19 08:06:51,034 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:06:51,034 INFO L195 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:06:51,034 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-19 08:06:51,035 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:06:51,035 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:06:51,035 INFO L85 PathProgramCache]: Analyzing trace with hash 1775408788, now seen corresponding path program 1 times [2022-11-19 08:06:51,036 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:06:51,036 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [18338557] [2022-11-19 08:06:51,036 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:06:51,036 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:06:51,068 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:06:51,146 INFO L134 CoverageAnalysis]: Checked inductivity of 34 backedges. 18 proven. 0 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2022-11-19 08:06:51,146 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:06:51,146 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [18338557] [2022-11-19 08:06:51,146 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [18338557] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:06:51,147 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:06:51,147 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-19 08:06:51,147 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1842313712] [2022-11-19 08:06:51,147 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:06:51,147 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-19 08:06:51,148 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:06:51,148 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-19 08:06:51,148 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-19 08:06:51,148 INFO L87 Difference]: Start difference. First operand 439 states and 541 transitions. Second operand has 4 states, 3 states have (on average 18.0) internal successors, (54), 4 states have internal predecessors, (54), 4 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (10), 3 states have call predecessors, (10), 4 states have call successors, (10) [2022-11-19 08:06:51,306 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:06:51,306 INFO L93 Difference]: Finished difference Result 880 states and 1084 transitions. [2022-11-19 08:06:51,307 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-19 08:06:51,307 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 18.0) internal successors, (54), 4 states have internal predecessors, (54), 4 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (10), 3 states have call predecessors, (10), 4 states have call successors, (10) Word has length 82 [2022-11-19 08:06:51,307 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:06:51,310 INFO L225 Difference]: With dead ends: 880 [2022-11-19 08:06:51,310 INFO L226 Difference]: Without dead ends: 443 [2022-11-19 08:06:51,311 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-19 08:06:51,312 INFO L413 NwaCegarLoop]: 93 mSDtfsCounter, 104 mSDsluCounter, 53 mSDsCounter, 0 mSdLazyCounter, 94 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 104 SdHoareTripleChecker+Valid, 146 SdHoareTripleChecker+Invalid, 98 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 94 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 08:06:51,313 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [104 Valid, 146 Invalid, 98 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 94 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 08:06:51,314 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 443 states. [2022-11-19 08:06:51,386 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 443 to 430. [2022-11-19 08:06:51,387 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 430 states, 281 states have (on average 1.2241992882562278) internal successors, (344), 306 states have internal predecessors, (344), 73 states have call successors, (73), 61 states have call predecessors, (73), 75 states have return successors, (102), 78 states have call predecessors, (102), 73 states have call successors, (102) [2022-11-19 08:06:51,390 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 430 states to 430 states and 519 transitions. [2022-11-19 08:06:51,390 INFO L78 Accepts]: Start accepts. Automaton has 430 states and 519 transitions. Word has length 82 [2022-11-19 08:06:51,391 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:06:51,391 INFO L495 AbstractCegarLoop]: Abstraction has 430 states and 519 transitions. [2022-11-19 08:06:51,391 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 18.0) internal successors, (54), 4 states have internal predecessors, (54), 4 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (10), 3 states have call predecessors, (10), 4 states have call successors, (10) [2022-11-19 08:06:51,391 INFO L276 IsEmpty]: Start isEmpty. Operand 430 states and 519 transitions. [2022-11-19 08:06:51,396 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 80 [2022-11-19 08:06:51,396 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:06:51,396 INFO L195 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:06:51,397 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-19 08:06:51,398 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:06:51,398 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:06:51,398 INFO L85 PathProgramCache]: Analyzing trace with hash -1883512897, now seen corresponding path program 1 times [2022-11-19 08:06:51,398 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:06:51,399 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1654334947] [2022-11-19 08:06:51,399 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:06:51,399 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:06:51,439 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:06:51,969 INFO L134 CoverageAnalysis]: Checked inductivity of 34 backedges. 7 proven. 16 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-11-19 08:06:51,969 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:06:51,970 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1654334947] [2022-11-19 08:06:51,970 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1654334947] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 08:06:51,970 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [177115140] [2022-11-19 08:06:51,970 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:06:51,971 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:06:51,971 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:06:51,978 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 08:06:52,003 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-19 08:06:52,103 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:06:52,106 INFO L263 TraceCheckSpWp]: Trace formula consists of 336 conjuncts, 31 conjunts are in the unsatisfiable core [2022-11-19 08:06:52,113 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 08:06:52,576 INFO L134 CoverageAnalysis]: Checked inductivity of 34 backedges. 30 proven. 2 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-19 08:06:52,576 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-19 08:06:53,545 INFO L134 CoverageAnalysis]: Checked inductivity of 34 backedges. 18 proven. 7 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2022-11-19 08:06:53,546 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [177115140] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-19 08:06:53,546 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1584195880] [2022-11-19 08:06:53,575 INFO L159 IcfgInterpreter]: Started Sifa with 52 locations of interest [2022-11-19 08:06:53,575 INFO L166 IcfgInterpreter]: Building call graph [2022-11-19 08:06:53,579 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-19 08:06:53,586 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-19 08:06:53,586 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-19 08:07:01,214 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 48 for LOIs [2022-11-19 08:07:01,627 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 42 for LOIs [2022-11-19 08:07:01,725 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 42 for LOIs [2022-11-19 08:07:01,898 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 27 for LOIs [2022-11-19 08:07:01,922 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 27 for LOIs [2022-11-19 08:07:01,924 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 46 for LOIs [2022-11-19 08:07:01,932 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 29 for LOIs [2022-11-19 08:07:01,935 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-19 08:07:11,071 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6936#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift___utac_acc__Specification2_spec__2_~tmp~7#1| ~methaneLevelCritical~0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification2_spec__2_~tmp___0~3#1|) (<= 0 |old(~pumpRunning~0)|) (<= ~pumpRunning~0 1) (<= |old(~pumpRunning~0)| 1) (= ~head~0.offset 0) (= 1 ~systemActive~0) (<= 0 ~methAndRunningLastTime~0) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp~7#1| 0)) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp~7#1| 1) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~3#1| 0)) (<= 0 |old(~methAndRunningLastTime~0)|) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~3#1|) (<= |old(~methAndRunningLastTime~0)| 1) (<= 0 ~methaneLevelCritical~0) (<= 0 ~pumpRunning~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (not (= ~methAndRunningLastTime~0 0)) (<= ~methAndRunningLastTime~0 1) (<= 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-19 08:07:11,071 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-19 08:07:11,071 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-19 08:07:11,071 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 12, 11] total 30 [2022-11-19 08:07:11,072 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1585917179] [2022-11-19 08:07:11,072 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-19 08:07:11,073 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 30 states [2022-11-19 08:07:11,073 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:07:11,073 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 30 interpolants. [2022-11-19 08:07:11,075 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=403, Invalid=3887, Unknown=0, NotChecked=0, Total=4290 [2022-11-19 08:07:11,075 INFO L87 Difference]: Start difference. First operand 430 states and 519 transitions. Second operand has 30 states, 21 states have (on average 4.857142857142857) internal successors, (102), 21 states have internal predecessors, (102), 9 states have call successors, (24), 6 states have call predecessors, (24), 16 states have return successors, (28), 15 states have call predecessors, (28), 9 states have call successors, (28) [2022-11-19 08:07:16,169 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:07:16,169 INFO L93 Difference]: Finished difference Result 1734 states and 2434 transitions. [2022-11-19 08:07:16,170 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 71 states. [2022-11-19 08:07:16,170 INFO L78 Accepts]: Start accepts. Automaton has has 30 states, 21 states have (on average 4.857142857142857) internal successors, (102), 21 states have internal predecessors, (102), 9 states have call successors, (24), 6 states have call predecessors, (24), 16 states have return successors, (28), 15 states have call predecessors, (28), 9 states have call successors, (28) Word has length 79 [2022-11-19 08:07:16,171 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:07:16,179 INFO L225 Difference]: With dead ends: 1734 [2022-11-19 08:07:16,179 INFO L226 Difference]: Without dead ends: 1252 [2022-11-19 08:07:16,186 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 333 GetRequests, 201 SyntacticMatches, 5 SemanticMatches, 127 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6149 ImplicationChecksByTransitivity, 12.0s TimeCoverageRelationStatistics Valid=1512, Invalid=15000, Unknown=0, NotChecked=0, Total=16512 [2022-11-19 08:07:16,188 INFO L413 NwaCegarLoop]: 86 mSDtfsCounter, 1803 mSDsluCounter, 698 mSDsCounter, 0 mSdLazyCounter, 3007 mSolverCounterSat, 1200 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1810 SdHoareTripleChecker+Valid, 784 SdHoareTripleChecker+Invalid, 4207 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1200 IncrementalHoareTripleChecker+Valid, 3007 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.4s IncrementalHoareTripleChecker+Time [2022-11-19 08:07:16,189 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1810 Valid, 784 Invalid, 4207 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1200 Valid, 3007 Invalid, 0 Unknown, 0 Unchecked, 2.4s Time] [2022-11-19 08:07:16,191 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1252 states. [2022-11-19 08:07:16,287 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1252 to 842. [2022-11-19 08:07:16,289 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 842 states, 553 states have (on average 1.2007233273056057) internal successors, (664), 598 states have internal predecessors, (664), 141 states have call successors, (141), 119 states have call predecessors, (141), 147 states have return successors, (197), 152 states have call predecessors, (197), 141 states have call successors, (197) [2022-11-19 08:07:16,299 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 842 states to 842 states and 1002 transitions. [2022-11-19 08:07:16,300 INFO L78 Accepts]: Start accepts. Automaton has 842 states and 1002 transitions. Word has length 79 [2022-11-19 08:07:16,301 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:07:16,301 INFO L495 AbstractCegarLoop]: Abstraction has 842 states and 1002 transitions. [2022-11-19 08:07:16,302 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 30 states, 21 states have (on average 4.857142857142857) internal successors, (102), 21 states have internal predecessors, (102), 9 states have call successors, (24), 6 states have call predecessors, (24), 16 states have return successors, (28), 15 states have call predecessors, (28), 9 states have call successors, (28) [2022-11-19 08:07:16,302 INFO L276 IsEmpty]: Start isEmpty. Operand 842 states and 1002 transitions. [2022-11-19 08:07:16,305 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 87 [2022-11-19 08:07:16,305 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:07:16,305 INFO L195 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:07:16,315 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-19 08:07:16,512 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:07:16,512 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:07:16,512 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:07:16,513 INFO L85 PathProgramCache]: Analyzing trace with hash -953146253, now seen corresponding path program 1 times [2022-11-19 08:07:16,513 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:07:16,513 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1028319293] [2022-11-19 08:07:16,513 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:07:16,513 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:07:16,536 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:07:16,920 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 19 proven. 7 refuted. 0 times theorem prover too weak. 21 trivial. 0 not checked. [2022-11-19 08:07:16,920 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:07:16,920 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1028319293] [2022-11-19 08:07:16,920 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1028319293] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 08:07:16,920 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [21942327] [2022-11-19 08:07:16,920 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:07:16,921 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:07:16,921 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:07:16,922 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 08:07:16,947 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-19 08:07:17,022 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:07:17,024 INFO L263 TraceCheckSpWp]: Trace formula consists of 364 conjuncts, 35 conjunts are in the unsatisfiable core [2022-11-19 08:07:17,028 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 08:07:17,280 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 40 proven. 6 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-19 08:07:17,280 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-19 08:07:17,938 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 27 proven. 6 refuted. 0 times theorem prover too weak. 14 trivial. 0 not checked. [2022-11-19 08:07:17,939 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [21942327] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-19 08:07:17,939 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [929657965] [2022-11-19 08:07:17,941 INFO L159 IcfgInterpreter]: Started Sifa with 46 locations of interest [2022-11-19 08:07:17,941 INFO L166 IcfgInterpreter]: Building call graph [2022-11-19 08:07:17,942 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-19 08:07:17,942 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-19 08:07:17,942 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-19 08:07:24,369 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 50 for LOIs [2022-11-19 08:07:24,688 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 30 for LOIs [2022-11-19 08:07:24,739 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 30 for LOIs [2022-11-19 08:07:24,848 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 29 for LOIs [2022-11-19 08:07:24,871 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 46 for LOIs [2022-11-19 08:07:24,877 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 53 for LOIs [2022-11-19 08:07:24,886 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-19 08:07:32,927 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '11460#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift___utac_acc__Specification2_spec__2_~tmp~7#1| ~methaneLevelCritical~0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification2_spec__2_~tmp___0~3#1|) (= ~head~0.offset 0) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp~7#1| 0)) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp~7#1| 1) (<= 2 |old(~waterLevel~0)|) (<= 0 |old(~methAndRunningLastTime~0)|) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~3#1|) (<= 0 ~methaneLevelCritical~0) (= |old(~waterLevel~0)| ~waterLevel~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (= |old(~methAndRunningLastTime~0)| ~methAndRunningLastTime~0) (not (= ~methAndRunningLastTime~0 0)) (<= ~methAndRunningLastTime~0 1) (<= 0 |#StackHeapBarrier|) (= ~pumpRunning~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-19 08:07:32,927 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-19 08:07:32,927 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-19 08:07:32,928 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 13, 13] total 28 [2022-11-19 08:07:32,928 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1669583409] [2022-11-19 08:07:32,928 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-19 08:07:32,928 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2022-11-19 08:07:32,929 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:07:32,929 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2022-11-19 08:07:32,930 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=372, Invalid=3168, Unknown=0, NotChecked=0, Total=3540 [2022-11-19 08:07:32,931 INFO L87 Difference]: Start difference. First operand 842 states and 1002 transitions. Second operand has 28 states, 22 states have (on average 5.0) internal successors, (110), 21 states have internal predecessors, (110), 10 states have call successors, (24), 6 states have call predecessors, (24), 13 states have return successors, (26), 15 states have call predecessors, (26), 10 states have call successors, (26) [2022-11-19 08:07:42,015 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:07:42,016 INFO L93 Difference]: Finished difference Result 3194 states and 4091 transitions. [2022-11-19 08:07:42,016 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 149 states. [2022-11-19 08:07:42,016 INFO L78 Accepts]: Start accepts. Automaton has has 28 states, 22 states have (on average 5.0) internal successors, (110), 21 states have internal predecessors, (110), 10 states have call successors, (24), 6 states have call predecessors, (24), 13 states have return successors, (26), 15 states have call predecessors, (26), 10 states have call successors, (26) Word has length 86 [2022-11-19 08:07:42,016 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:07:42,028 INFO L225 Difference]: With dead ends: 3194 [2022-11-19 08:07:42,028 INFO L226 Difference]: Without dead ends: 2399 [2022-11-19 08:07:42,040 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 446 GetRequests, 240 SyntacticMatches, 10 SemanticMatches, 196 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15922 ImplicationChecksByTransitivity, 13.7s TimeCoverageRelationStatistics Valid=3128, Invalid=35878, Unknown=0, NotChecked=0, Total=39006 [2022-11-19 08:07:42,041 INFO L413 NwaCegarLoop]: 141 mSDtfsCounter, 1821 mSDsluCounter, 1234 mSDsCounter, 0 mSdLazyCounter, 4468 mSolverCounterSat, 1251 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1824 SdHoareTripleChecker+Valid, 1375 SdHoareTripleChecker+Invalid, 5719 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1251 IncrementalHoareTripleChecker+Valid, 4468 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.2s IncrementalHoareTripleChecker+Time [2022-11-19 08:07:42,041 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1824 Valid, 1375 Invalid, 5719 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1251 Valid, 4468 Invalid, 0 Unknown, 0 Unchecked, 3.2s Time] [2022-11-19 08:07:42,044 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2399 states. [2022-11-19 08:07:42,252 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2399 to 1853. [2022-11-19 08:07:42,255 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1853 states, 1244 states have (on average 1.1945337620578778) internal successors, (1486), 1330 states have internal predecessors, (1486), 304 states have call successors, (304), 267 states have call predecessors, (304), 304 states have return successors, (407), 307 states have call predecessors, (407), 304 states have call successors, (407) [2022-11-19 08:07:42,262 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1853 states to 1853 states and 2197 transitions. [2022-11-19 08:07:42,263 INFO L78 Accepts]: Start accepts. Automaton has 1853 states and 2197 transitions. Word has length 86 [2022-11-19 08:07:42,263 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:07:42,263 INFO L495 AbstractCegarLoop]: Abstraction has 1853 states and 2197 transitions. [2022-11-19 08:07:42,264 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 28 states, 22 states have (on average 5.0) internal successors, (110), 21 states have internal predecessors, (110), 10 states have call successors, (24), 6 states have call predecessors, (24), 13 states have return successors, (26), 15 states have call predecessors, (26), 10 states have call successors, (26) [2022-11-19 08:07:42,264 INFO L276 IsEmpty]: Start isEmpty. Operand 1853 states and 2197 transitions. [2022-11-19 08:07:42,269 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 137 [2022-11-19 08:07:42,270 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:07:42,270 INFO L195 NwaCegarLoop]: trace histogram [6, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:07:42,279 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-19 08:07:42,478 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:07:42,478 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:07:42,478 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:07:42,479 INFO L85 PathProgramCache]: Analyzing trace with hash -960410585, now seen corresponding path program 1 times [2022-11-19 08:07:42,479 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:07:42,479 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [622445953] [2022-11-19 08:07:42,479 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:07:42,479 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:07:42,498 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:07:42,718 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 49 proven. 6 refuted. 0 times theorem prover too weak. 72 trivial. 0 not checked. [2022-11-19 08:07:42,718 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:07:42,718 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [622445953] [2022-11-19 08:07:42,718 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [622445953] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 08:07:42,718 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1170428737] [2022-11-19 08:07:42,719 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:07:42,719 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:07:42,719 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:07:42,720 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 08:07:42,747 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-19 08:07:42,845 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:07:42,848 INFO L263 TraceCheckSpWp]: Trace formula consists of 504 conjuncts, 29 conjunts are in the unsatisfiable core [2022-11-19 08:07:42,852 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 08:07:42,999 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 92 proven. 0 refuted. 0 times theorem prover too weak. 35 trivial. 0 not checked. [2022-11-19 08:07:43,000 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-19 08:07:43,000 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1170428737] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:07:43,000 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-19 08:07:43,000 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [10] total 18 [2022-11-19 08:07:43,000 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1463806146] [2022-11-19 08:07:43,001 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:07:43,001 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-11-19 08:07:43,001 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:07:43,002 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-11-19 08:07:43,003 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=39, Invalid=267, Unknown=0, NotChecked=0, Total=306 [2022-11-19 08:07:43,003 INFO L87 Difference]: Start difference. First operand 1853 states and 2197 transitions. Second operand has 11 states, 8 states have (on average 9.5) internal successors, (76), 8 states have internal predecessors, (76), 3 states have call successors, (19), 3 states have call predecessors, (19), 6 states have return successors, (20), 6 states have call predecessors, (20), 3 states have call successors, (20) [2022-11-19 08:07:43,605 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:07:43,605 INFO L93 Difference]: Finished difference Result 3263 states and 3900 transitions. [2022-11-19 08:07:43,606 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-11-19 08:07:43,606 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 8 states have (on average 9.5) internal successors, (76), 8 states have internal predecessors, (76), 3 states have call successors, (19), 3 states have call predecessors, (19), 6 states have return successors, (20), 6 states have call predecessors, (20), 3 states have call successors, (20) Word has length 136 [2022-11-19 08:07:43,608 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:07:43,609 INFO L225 Difference]: With dead ends: 3263 [2022-11-19 08:07:43,609 INFO L226 Difference]: Without dead ends: 0 [2022-11-19 08:07:43,615 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 157 GetRequests, 133 SyntacticMatches, 0 SemanticMatches, 24 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 56 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=79, Invalid=571, Unknown=0, NotChecked=0, Total=650 [2022-11-19 08:07:43,616 INFO L413 NwaCegarLoop]: 130 mSDtfsCounter, 57 mSDsluCounter, 892 mSDsCounter, 0 mSdLazyCounter, 580 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 63 SdHoareTripleChecker+Valid, 1022 SdHoareTripleChecker+Invalid, 585 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 580 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-19 08:07:43,617 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [63 Valid, 1022 Invalid, 585 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 580 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-19 08:07:43,618 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-19 08:07:43,618 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-19 08:07:43,618 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:07:43,619 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-19 08:07:43,619 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 136 [2022-11-19 08:07:43,619 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:07:43,619 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-19 08:07:43,620 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 8 states have (on average 9.5) internal successors, (76), 8 states have internal predecessors, (76), 3 states have call successors, (19), 3 states have call predecessors, (19), 6 states have return successors, (20), 6 states have call predecessors, (20), 3 states have call successors, (20) [2022-11-19 08:07:43,620 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-19 08:07:43,620 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-19 08:07:43,624 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-19 08:07:43,635 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-19 08:07:43,830 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-11-19 08:07:43,833 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-19 08:07:59,045 INFO L895 garLoopResultBuilder]: At program point deactivatePumpENTRY(lines 238 245) the Hoare annotation is: (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 0 ~systemActive~0)) [2022-11-19 08:07:59,045 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 238 245) no Hoare annotation was computed. [2022-11-19 08:07:59,045 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 128 134) no Hoare annotation was computed. [2022-11-19 08:07:59,045 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 128 134) the Hoare annotation is: true [2022-11-19 08:07:59,046 INFO L895 garLoopResultBuilder]: At program point L176(line 176) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse0 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0) (or .cse1 (not (= ~methaneLevelCritical~0 0)) .cse0) (or .cse1 .cse0 (not (= ~methAndRunningLastTime~0 0))))) [2022-11-19 08:07:59,046 INFO L895 garLoopResultBuilder]: At program point L172(line 172) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse0 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0) (or .cse1 (not (= ~methaneLevelCritical~0 0)) .cse0) (or .cse1 .cse0 (not (= ~methAndRunningLastTime~0 0))))) [2022-11-19 08:07:59,046 INFO L899 garLoopResultBuilder]: For program point L170(lines 170 178) no Hoare annotation was computed. [2022-11-19 08:07:59,046 INFO L895 garLoopResultBuilder]: At program point L166(lines 166 183) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse0 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0) (or .cse1 (not (= ~methaneLevelCritical~0 0)) .cse0) (or .cse1 .cse0 (not (= ~methAndRunningLastTime~0 0))))) [2022-11-19 08:07:59,046 INFO L895 garLoopResultBuilder]: At program point L181(line 181) the Hoare annotation is: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse1 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 (not (= ~methAndRunningLastTime~0 0))) (or .cse0 (not (= ~methaneLevelCritical~0 0)) .cse1) (or (not .cse0) (= ~pumpRunning~0 0) .cse1))) [2022-11-19 08:07:59,047 INFO L899 garLoopResultBuilder]: For program point L181-1(lines 162 186) no Hoare annotation was computed. [2022-11-19 08:07:59,047 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__methaneQueryENTRY(lines 162 186) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse0 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0) (or .cse1 (not (= ~methaneLevelCritical~0 0)) .cse0) (or .cse1 .cse0 (not (= ~methAndRunningLastTime~0 0))))) [2022-11-19 08:07:59,047 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__methaneQueryEXIT(lines 162 186) no Hoare annotation was computed. [2022-11-19 08:07:59,047 INFO L895 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 511 522) the Hoare annotation is: (let ((.cse1 (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0)) (.cse0 (= |old(~methaneLevelCritical~0)| 0)) (.cse2 (= 0 ~systemActive~0)) (.cse3 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 .cse2) (or (not (= ~pumpRunning~0 0)) .cse1 .cse3) (or (not .cse0) (= ~methaneLevelCritical~0 0) .cse2 .cse3))) [2022-11-19 08:07:59,047 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 511 522) no Hoare annotation was computed. [2022-11-19 08:07:59,048 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 589 618) no Hoare annotation was computed. [2022-11-19 08:07:59,048 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 589 618) the Hoare annotation is: true [2022-11-19 08:07:59,048 INFO L899 garLoopResultBuilder]: For program point L603(lines 603 607) no Hoare annotation was computed. [2022-11-19 08:07:59,048 INFO L902 garLoopResultBuilder]: At program point L603-1(lines 603 607) the Hoare annotation is: true [2022-11-19 08:07:59,048 INFO L902 garLoopResultBuilder]: At program point L599-2(lines 599 613) the Hoare annotation is: true [2022-11-19 08:07:59,048 INFO L902 garLoopResultBuilder]: At program point L595(line 595) the Hoare annotation is: true [2022-11-19 08:07:59,049 INFO L899 garLoopResultBuilder]: For program point L595-1(line 595) no Hoare annotation was computed. [2022-11-19 08:07:59,049 INFO L902 garLoopResultBuilder]: At program point L614(lines 589 618) the Hoare annotation is: true [2022-11-19 08:07:59,049 INFO L899 garLoopResultBuilder]: For program point L610(line 610) no Hoare annotation was computed. [2022-11-19 08:07:59,049 INFO L902 garLoopResultBuilder]: At program point isMethaneLevelCriticalENTRY(lines 523 531) the Hoare annotation is: true [2022-11-19 08:07:59,049 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 523 531) no Hoare annotation was computed. [2022-11-19 08:07:59,049 INFO L899 garLoopResultBuilder]: For program point L192(lines 192 209) no Hoare annotation was computed. [2022-11-19 08:07:59,050 INFO L895 garLoopResultBuilder]: At program point L440(line 440) the Hoare annotation is: (and (not (= |old(~pumpRunning~0)| 0)) (= 0 ~systemActive~0)) [2022-11-19 08:07:59,050 INFO L899 garLoopResultBuilder]: For program point L115-1(lines 115 121) no Hoare annotation was computed. [2022-11-19 08:07:59,050 INFO L899 garLoopResultBuilder]: For program point L466(lines 466 476) no Hoare annotation was computed. [2022-11-19 08:07:59,050 INFO L895 garLoopResultBuilder]: At program point L462(lines 462 479) the Hoare annotation is: (let ((.cse14 (= ~methaneLevelCritical~0 0))) (let ((.cse9 (= 0 ~systemActive~0)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (not .cse14)) (.cse13 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse11 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~7#1| ~methaneLevelCritical~0)) (.cse12 (= ~pumpRunning~0 0)) (.cse15 (not (= |old(~waterLevel~0)| 1)))) (let ((.cse2 (= ~methAndRunningLastTime~0 0)) (.cse8 (and .cse13 .cse11 .cse12 (or .cse15 (<= ~waterLevel~0 1)))) (.cse7 (and .cse11 (<= 2 ~waterLevel~0) (or .cse0 .cse15) (or .cse13 .cse14) (or (and .cse12 .cse3) (and .cse14 (= ~pumpRunning~0 1))))) (.cse6 (not (<= 2 |old(~waterLevel~0)|))) (.cse1 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse5 (not .cse9)) (.cse4 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse10 (= ~waterLevel~0 1))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse0 .cse4 .cse5 .cse6) (or .cse1 .cse2 .cse7 .cse8 .cse9) (or .cse1 .cse2 (not (= |old(~pumpRunning~0)| 1)) .cse9) (or .cse0 .cse1 .cse7 .cse4 .cse10) (or (and .cse0 .cse11 .cse12) (and .cse13 .cse0 .cse11) .cse7 .cse8 .cse9) (or .cse0 .cse1 .cse7 .cse4 .cse6) (or .cse14 (and .cse13 .cse12) (and .cse12 (not (= |timeShift_processEnvironment_~tmp~2#1| 0))) .cse9) (or .cse0 .cse1 .cse14 .cse4 .cse10) (or .cse0 .cse5 (and .cse11 .cse12 (or .cse4 .cse10))))))) [2022-11-19 08:07:59,051 INFO L895 garLoopResultBuilder]: At program point L462-1(lines 454 482) the Hoare annotation is: (let ((.cse2 (= ~pumpRunning~0 0)) (.cse0 (= ~methaneLevelCritical~0 0))) (let ((.cse15 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~7#1| ~methaneLevelCritical~0)) (.cse3 (= ~methAndRunningLastTime~0 0)) (.cse6 (not (= |old(~pumpRunning~0)| 0))) (.cse16 (not (= |old(~waterLevel~0)| 1))) (.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse8 (and .cse2 (not .cse0))) (.cse9 (and .cse0 (= ~pumpRunning~0 1))) (.cse5 (= 0 ~systemActive~0))) (let ((.cse11 (not (<= 2 |old(~waterLevel~0)|))) (.cse4 (= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~3#1| 0)) (.cse12 (not .cse5)) (.cse14 (and .cse15 .cse3 (or .cse0 (not (= |processEnvironment__wrappee__highWaterSensor_activatePump_#t~ret8#1| 0))) (<= 2 ~waterLevel~0) (or .cse0 (not (= |isMethaneAlarm_#t~ret9| 0))) (or .cse0 (not (= |isMethaneAlarm_#res| 0))) (or .cse6 .cse16) (or .cse1 .cse0) (or .cse8 .cse9) (or .cse0 (not (= |isMethaneLevelCritical_#res| 0))))) (.cse7 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse10 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse13 (= ~waterLevel~0 1))) (and (or .cse0 (and .cse1 .cse2 .cse3 .cse4) .cse5 (and .cse2 (not (= |timeShift_processEnvironment_~tmp~2#1| 0)) .cse4)) (or .cse6 .cse7 .cse8 .cse9 .cse10 .cse11) (or .cse6 .cse10 .cse12 .cse11) (or .cse6 .cse7 .cse10 .cse13 .cse14) (or .cse6 .cse7 .cse0 .cse10 .cse11) (or .cse6 .cse0 .cse4 .cse12) (or (and .cse1 .cse15 .cse2 .cse3 (or .cse10 .cse13)) .cse6 .cse12) (or (and .cse6 .cse15 .cse2 .cse3) (and .cse1 .cse6 .cse15 .cse3) (and .cse1 .cse15 .cse2 .cse3 (or .cse16 (<= ~waterLevel~0 1))) .cse5 .cse14) (or .cse6 .cse7 .cse0 .cse10 .cse13))))) [2022-11-19 08:07:59,051 INFO L895 garLoopResultBuilder]: At program point L202(line 202) the Hoare annotation is: (let ((.cse0 (= 0 ~systemActive~0))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0) (not (= |old(~pumpRunning~0)| 0)) (or (= ~methaneLevelCritical~0 0) .cse0) (or (not (= |old(~methAndRunningLastTime~0)| 0)) (= ~methAndRunningLastTime~0 0) .cse0))) [2022-11-19 08:07:59,051 INFO L895 garLoopResultBuilder]: At program point L198(line 198) the Hoare annotation is: (let ((.cse0 (= 0 ~systemActive~0))) (and (not (= |old(~pumpRunning~0)| 0)) (or (not (= |old(~methAndRunningLastTime~0)| 0)) (= ~methAndRunningLastTime~0 0) .cse0) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (not (= |timeShift_processEnvironment_~tmp~2#1| 0))) .cse0))) [2022-11-19 08:07:59,052 INFO L895 garLoopResultBuilder]: At program point L194(line 194) the Hoare annotation is: (let ((.cse0 (= 0 ~systemActive~0))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0) (not (= |old(~pumpRunning~0)| 0)) (or (not (= |old(~methAndRunningLastTime~0)| 0)) (= ~methAndRunningLastTime~0 0) .cse0))) [2022-11-19 08:07:59,052 INFO L899 garLoopResultBuilder]: For program point L194-1(line 194) no Hoare annotation was computed. [2022-11-19 08:07:59,052 INFO L899 garLoopResultBuilder]: For program point L467(lines 467 473) no Hoare annotation was computed. [2022-11-19 08:07:59,052 INFO L895 garLoopResultBuilder]: At program point L207(line 207) the Hoare annotation is: (let ((.cse1 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse2 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse0 (= 0 ~systemActive~0))) (and (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= ~pumpRunning~0 0) (or (not (= |old(~waterLevel~0)| 1)) (<= ~waterLevel~0 1))) .cse0) (or .cse1 .cse2 .cse0 (not (<= 2 |old(~waterLevel~0)|))) (or .cse1 (and (= ~methAndRunningLastTime~0 0) (or .cse2 (= ~waterLevel~0 1))) .cse0) (or (not (= |old(~pumpRunning~0)| 0)) (not .cse0)))) [2022-11-19 08:07:59,052 INFO L895 garLoopResultBuilder]: At program point L207-1(lines 188 212) the Hoare annotation is: (let ((.cse9 (= ~methAndRunningLastTime~0 0)) (.cse0 (= ~pumpRunning~0 0)) (.cse11 (= ~methaneLevelCritical~0 0))) (let ((.cse5 (and .cse0 (not .cse11))) (.cse6 (and .cse11 (= ~pumpRunning~0 1))) (.cse3 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse10 (and .cse9 (or (= |old(~waterLevel~0)| ~waterLevel~0) (= ~waterLevel~0 1)))) (.cse8 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse4 (<= 2 ~waterLevel~0)) (.cse1 (not (= |old(~pumpRunning~0)| 0))) (.cse7 (= 0 ~systemActive~0))) (and (let ((.cse2 (not (= |old(~waterLevel~0)| 1)))) (or (and .cse0 (or .cse1 .cse2 (<= ~waterLevel~0 1))) (and .cse3 .cse1) (and .cse4 (or .cse1 .cse2) (or .cse5 .cse6)) .cse7)) (or .cse8 .cse9 .cse7) (or .cse1 .cse8 .cse10 .cse5 .cse6) (or .cse11 (and .cse3 .cse0) (and .cse0 (not (= |timeShift_processEnvironment_~tmp~2#1| 0))) .cse7) (or .cse1 .cse8 .cse10 .cse11) (or .cse1 .cse8 .cse4 (not (<= 2 |old(~waterLevel~0)|))) (or .cse1 (not .cse7))))) [2022-11-19 08:07:59,053 INFO L899 garLoopResultBuilder]: For program point L108-1(lines 107 126) no Hoare annotation was computed. [2022-11-19 08:07:59,053 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 104 127) the Hoare annotation is: (let ((.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse7 (= 0 ~systemActive~0))) (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (not .cse7)) (.cse5 (not (<= 2 |old(~waterLevel~0)|))) (.cse1 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse2 (= ~methAndRunningLastTime~0 0)) (.cse6 (or .cse3 (= ~waterLevel~0 1)))) (and (or .cse0 .cse1 .cse2 (not (= ~methaneLevelCritical~0 0))) (or .cse0 .cse3 .cse4 .cse5) (or .cse0 .cse4 (and (= ~pumpRunning~0 0) .cse6)) (or .cse1 .cse3 .cse7 .cse5) (or .cse1 .cse2 .cse7) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse6) .cse7)))) [2022-11-19 08:07:59,053 INFO L895 garLoopResultBuilder]: At program point L460(line 460) the Hoare annotation is: (let ((.cse8 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse13 (= ~methAndRunningLastTime~0 0)) (.cse11 (or .cse8 (= ~waterLevel~0 1))) (.cse0 (= ~pumpRunning~0 0)) (.cse15 (= ~methaneLevelCritical~0 0)) (.cse7 (= 0 ~systemActive~0))) (let ((.cse9 (not .cse7)) (.cse5 (and .cse0 (not .cse15))) (.cse6 (and .cse15 (= ~pumpRunning~0 1))) (.cse14 (and .cse13 .cse11)) (.cse3 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse1 (not (= |old(~pumpRunning~0)| 0))) (.cse12 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse4 (<= 2 ~waterLevel~0)) (.cse10 (not (<= 2 |old(~waterLevel~0)|)))) (and (let ((.cse2 (not (= |old(~waterLevel~0)| 1)))) (or (and .cse0 (or .cse1 .cse2 (<= ~waterLevel~0 1))) (and .cse3 .cse1) (and .cse4 (or .cse1 .cse2) (or .cse5 .cse6)) .cse7)) (or .cse1 .cse8 .cse9 .cse10) (or .cse1 .cse9 (and .cse0 .cse11)) (or .cse12 .cse13 .cse7) (or .cse1 .cse12 .cse14 .cse5 .cse6) (or .cse1 .cse12 .cse14 .cse15 .cse7) (or .cse15 (and .cse3 .cse0) (and .cse0 (not (= |timeShift_processEnvironment_~tmp~2#1| 0))) .cse7) (or .cse1 .cse12 .cse4 .cse10))))) [2022-11-19 08:07:59,054 INFO L899 garLoopResultBuilder]: For program point L460-1(line 460) no Hoare annotation was computed. [2022-11-19 08:07:59,054 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 104 127) no Hoare annotation was computed. [2022-11-19 08:07:59,054 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 440) no Hoare annotation was computed. [2022-11-19 08:07:59,054 INFO L899 garLoopResultBuilder]: For program point L196(lines 196 204) no Hoare annotation was computed. [2022-11-19 08:07:59,054 INFO L895 garLoopResultBuilder]: At program point L671(lines 671 678) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= ~methAndRunningLastTime~0 0) (= ~methaneLevelCritical~0 0) (= |ULTIMATE.start_main_~tmp~8#1| 1) (= ~waterLevel~0 1) (not (= 0 ~systemActive~0))) [2022-11-19 08:07:59,054 INFO L899 garLoopResultBuilder]: For program point L415(lines 415 421) no Hoare annotation was computed. [2022-11-19 08:07:59,055 INFO L895 garLoopResultBuilder]: At program point L415-2(lines 407 422) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_main_~tmp~8#1| 1)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= ~pumpRunning~0 0) .cse0 .cse1) (and .cse0 .cse1 (not (= 0 ~systemActive~0))))) [2022-11-19 08:07:59,055 INFO L902 garLoopResultBuilder]: At program point L671-2(lines 671 678) the Hoare annotation is: true [2022-11-19 08:07:59,055 INFO L899 garLoopResultBuilder]: For program point L378(lines 377 426) no Hoare annotation was computed. [2022-11-19 08:07:59,055 INFO L895 garLoopResultBuilder]: At program point L407(lines 407 422) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_main_~tmp~8#1| 1)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 (not (= 0 ~systemActive~0))) (and (= ~pumpRunning~0 0) (= ~methAndRunningLastTime~0 0) .cse0 .cse1))) [2022-11-19 08:07:59,055 INFO L895 garLoopResultBuilder]: At program point L399(line 399) the Hoare annotation is: (let ((.cse3 (not (= 0 ~systemActive~0))) (.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~8#1| 1)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 .cse2 .cse3) (and (not (= ~methaneLevelCritical~0 0)) .cse1 .cse2 .cse3) (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2))) [2022-11-19 08:07:59,056 INFO L895 garLoopResultBuilder]: At program point L424(lines 377 426) the Hoare annotation is: (let ((.cse3 (not (= 0 ~systemActive~0))) (.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~8#1| 1)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 .cse2 .cse3) (and (not (= ~methaneLevelCritical~0 0)) .cse1 .cse2 .cse3) (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2))) [2022-11-19 08:07:59,056 INFO L899 garLoopResultBuilder]: For program point L387(lines 387 393) no Hoare annotation was computed. [2022-11-19 08:07:59,056 INFO L899 garLoopResultBuilder]: For program point L387-1(lines 387 393) no Hoare annotation was computed. [2022-11-19 08:07:59,056 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-19 08:07:59,056 INFO L895 garLoopResultBuilder]: At program point L346(line 346) the Hoare annotation is: (let ((.cse0 (not (= ~pumpRunning~0 0))) (.cse1 (= ~methaneLevelCritical~0 0))) (and (or .cse0 .cse1 (not (= |isMethaneAlarm_#t~ret9| 0))) (or .cse0 .cse1 (not (= |isMethaneAlarm_#res| 0))) (= |ULTIMATE.start_main_~tmp~8#1| 1) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (or .cse0 .cse1 (not (= |isMethaneLevelCritical_#res| 0))) (not (= 0 ~systemActive~0)))) [2022-11-19 08:07:59,056 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-19 08:07:59,057 INFO L902 garLoopResultBuilder]: At program point L430(lines 367 434) the Hoare annotation is: true [2022-11-19 08:07:59,057 INFO L899 garLoopResultBuilder]: For program point L397(lines 397 403) no Hoare annotation was computed. [2022-11-19 08:07:59,057 INFO L899 garLoopResultBuilder]: For program point L397-1(lines 397 403) no Hoare annotation was computed. [2022-11-19 08:07:59,057 INFO L895 garLoopResultBuilder]: At program point L389(line 389) the Hoare annotation is: (let ((.cse3 (not (= 0 ~systemActive~0))) (.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~8#1| 1)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 .cse2 .cse3) (and (not (= ~methaneLevelCritical~0 0)) .cse1 .cse2 .cse3) (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2))) [2022-11-19 08:07:59,057 INFO L899 garLoopResultBuilder]: For program point L344(lines 344 350) no Hoare annotation was computed. [2022-11-19 08:07:59,058 INFO L895 garLoopResultBuilder]: At program point L344-1(lines 344 350) the Hoare annotation is: (let ((.cse0 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~8#1| 1)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 .cse2 (not (= 0 ~systemActive~0))) (and .cse0 (= ~methAndRunningLastTime~0 0) .cse1 .cse2))) [2022-11-19 08:07:59,058 INFO L895 garLoopResultBuilder]: At program point L427(lines 376 428) the Hoare annotation is: false [2022-11-19 08:07:59,058 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 136 160) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse0 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0) (or .cse1 (not (= ~methaneLevelCritical~0 0)) .cse0) (or .cse1 .cse0 (not (= ~methAndRunningLastTime~0 0))))) [2022-11-19 08:07:59,058 INFO L895 garLoopResultBuilder]: At program point L155(line 155) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse0 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0) (or .cse1 (not (= ~methaneLevelCritical~0 0)) .cse0) (or .cse1 .cse0 (not (= ~methAndRunningLastTime~0 0))))) [2022-11-19 08:07:59,058 INFO L899 garLoopResultBuilder]: For program point L155-1(lines 136 160) no Hoare annotation was computed. [2022-11-19 08:07:59,059 INFO L895 garLoopResultBuilder]: At program point L226(line 226) the Hoare annotation is: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse1 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 (not (= ~methAndRunningLastTime~0 0))) (or .cse0 (not (= ~methaneLevelCritical~0 0)) .cse1) (or (not .cse0) (and (= ~pumpRunning~0 0) (<= 2 ~waterLevel~0)) .cse1))) [2022-11-19 08:07:59,059 INFO L895 garLoopResultBuilder]: At program point L226-1(line 226) the Hoare annotation is: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse1 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 (not (= ~methAndRunningLastTime~0 0))) (or .cse0 (not (= ~methaneLevelCritical~0 0)) .cse1) (or (and (= ~pumpRunning~0 0) (<= 2 ~waterLevel~0) (= |processEnvironment__wrappee__highWaterSensor_activatePump_#t~ret8#1| ~methaneLevelCritical~0)) (not .cse0) .cse1))) [2022-11-19 08:07:59,059 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 136 160) no Hoare annotation was computed. [2022-11-19 08:07:59,059 INFO L895 garLoopResultBuilder]: At program point L150(line 150) the Hoare annotation is: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse1 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 (not (= ~methAndRunningLastTime~0 0))) (or (not .cse0) .cse1 (and (= ~pumpRunning~0 0) (or (<= 2 ~waterLevel~0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~0#1| 0)))) (or .cse0 (not (= ~methaneLevelCritical~0 0)) .cse1))) [2022-11-19 08:07:59,059 INFO L899 garLoopResultBuilder]: For program point L144(lines 144 152) no Hoare annotation was computed. [2022-11-19 08:07:59,060 INFO L895 garLoopResultBuilder]: At program point L140(lines 140 157) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse0 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0) (or .cse1 (not (= ~methaneLevelCritical~0 0)) .cse0) (or .cse1 .cse0 (not (= ~methAndRunningLastTime~0 0))))) [2022-11-19 08:07:59,060 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 499 510) no Hoare annotation was computed. [2022-11-19 08:07:59,060 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 499 510) the Hoare annotation is: (let ((.cse4 (not (<= 2 |old(~waterLevel~0)|))) (.cse0 (= ~methaneLevelCritical~0 0)) (.cse2 (= 0 ~systemActive~0)) (.cse5 (not (= ~pumpRunning~0 0))) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse6 (= ~waterLevel~0 1)) (.cse3 (not (= ~methAndRunningLastTime~0 0)))) (and (or (not .cse0) (not (= ~pumpRunning~0 1)) .cse1 .cse2 .cse3 .cse4) (or .cse5 .cse1 .cse3 .cse4) (or .cse1 .cse2 .cse6 .cse3) (or .cse0 .cse1 .cse2 .cse6) (or .cse5 .cse1 .cse6 .cse3))) [2022-11-19 08:07:59,060 INFO L902 garLoopResultBuilder]: At program point isMethaneAlarmENTRY(lines 246 256) the Hoare annotation is: true [2022-11-19 08:07:59,060 INFO L902 garLoopResultBuilder]: At program point L251(line 251) the Hoare annotation is: true [2022-11-19 08:07:59,061 INFO L899 garLoopResultBuilder]: For program point isMethaneAlarmEXIT(lines 246 256) no Hoare annotation was computed. [2022-11-19 08:07:59,061 INFO L899 garLoopResultBuilder]: For program point L251-1(line 251) no Hoare annotation was computed. [2022-11-19 08:07:59,064 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:07:59,066 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-19 08:07:59,097 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 19.11 08:07:59 BoogieIcfgContainer [2022-11-19 08:07:59,098 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-19 08:07:59,098 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-19 08:07:59,098 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-19 08:07:59,099 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-19 08:07:59,099 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 19.11 08:06:48" (3/4) ... [2022-11-19 08:07:59,102 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-19 08:07:59,108 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2022-11-19 08:07:59,108 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-19 08:07:59,108 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-19 08:07:59,108 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-19 08:07:59,108 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2022-11-19 08:07:59,108 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-19 08:07:59,109 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-19 08:07:59,109 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-19 08:07:59,109 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2022-11-19 08:07:59,109 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2022-11-19 08:07:59,117 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 51 nodes and edges [2022-11-19 08:07:59,117 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 13 nodes and edges [2022-11-19 08:07:59,118 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2022-11-19 08:07:59,118 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-19 08:07:59,119 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-19 08:07:59,143 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(methaneLevelCritical == 0)) && (((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((!(\old(pumpRunning) == 0) || !(0 == systemActive)) || (pumpRunning == 0 && (\old(waterLevel) == waterLevel || waterLevel == 1)))) && (((!(\old(methAndRunningLastTime) == 0) || \old(waterLevel) == waterLevel) || 0 == systemActive) || !(2 <= \old(waterLevel)))) && ((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || 0 == systemActive)) && ((pumpRunning == \old(pumpRunning) && (\old(waterLevel) == waterLevel || waterLevel == 1)) || 0 == systemActive) [2022-11-19 08:07:59,144 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((pumpRunning == 0 && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel <= 1)) || (pumpRunning == \old(pumpRunning) && !(\old(pumpRunning) == 0))) || ((2 <= waterLevel && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || 0 == systemActive) && ((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || 0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (methAndRunningLastTime == 0 && (\old(waterLevel) == waterLevel || waterLevel == 1))) || (pumpRunning == 0 && !(methaneLevelCritical == 0))) || (methaneLevelCritical == 0 && pumpRunning == 1))) && (((methaneLevelCritical == 0 || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) || (pumpRunning == 0 && !(tmp == 0))) || 0 == systemActive)) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (methAndRunningLastTime == 0 && (\old(waterLevel) == waterLevel || waterLevel == 1))) || methaneLevelCritical == 0)) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || 2 <= waterLevel) || !(2 <= \old(waterLevel)))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-19 08:07:59,145 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || 0 == systemActive) && ((pumpRunning == \old(pumpRunning) || !(methaneLevelCritical == 0)) || 0 == systemActive)) && ((pumpRunning == \old(pumpRunning) || 0 == systemActive) || !(methAndRunningLastTime == 0)) [2022-11-19 08:07:59,145 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(methaneLevelCritical == 0)) && (((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || ((((tmp == methaneLevelCritical && 2 <= waterLevel) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || (((pumpRunning == \old(pumpRunning) && tmp == methaneLevelCritical) && pumpRunning == 0) && (!(\old(waterLevel) == 1) || waterLevel <= 1))) || 0 == systemActive)) && (((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(\old(pumpRunning) == 1)) || 0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || ((((tmp == methaneLevelCritical && 2 <= waterLevel) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || \old(waterLevel) == waterLevel) || waterLevel == 1)) && ((((((!(\old(pumpRunning) == 0) && tmp == methaneLevelCritical) && pumpRunning == 0) || ((pumpRunning == \old(pumpRunning) && !(\old(pumpRunning) == 0)) && tmp == methaneLevelCritical)) || ((((tmp == methaneLevelCritical && 2 <= waterLevel) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || (((pumpRunning == \old(pumpRunning) && tmp == methaneLevelCritical) && pumpRunning == 0) && (!(\old(waterLevel) == 1) || waterLevel <= 1))) || 0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || ((((tmp == methaneLevelCritical && 2 <= waterLevel) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || \old(waterLevel) == waterLevel) || !(2 <= \old(waterLevel)))) && (((methaneLevelCritical == 0 || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) || (pumpRunning == 0 && !(tmp == 0))) || 0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methaneLevelCritical == 0) || \old(waterLevel) == waterLevel) || waterLevel == 1)) && ((!(\old(pumpRunning) == 0) || !(0 == systemActive)) || ((tmp == methaneLevelCritical && pumpRunning == 0) && (\old(waterLevel) == waterLevel || waterLevel == 1))) [2022-11-19 08:07:59,145 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || 0 == systemActive) && ((pumpRunning == \old(pumpRunning) || !(methaneLevelCritical == 0)) || 0 == systemActive)) && ((pumpRunning == \old(pumpRunning) || 0 == systemActive) || !(methAndRunningLastTime == 0)) [2022-11-19 08:07:59,146 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((((methaneLevelCritical == 0 || (((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && tmp___0 == 0)) || 0 == systemActive) || ((pumpRunning == 0 && !(tmp == 0)) && tmp___0 == 0)) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (pumpRunning == 0 && !(methaneLevelCritical == 0))) || (methaneLevelCritical == 0 && pumpRunning == 1)) || \old(waterLevel) == waterLevel) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || \old(waterLevel) == waterLevel) || waterLevel == 1) || (((((((((tmp == methaneLevelCritical && methAndRunningLastTime == 0) && (methaneLevelCritical == 0 || !(aux-isMethaneAlarm()-aux == 0))) && 2 <= waterLevel) && (methaneLevelCritical == 0 || !(aux-isMethaneLevelCritical()-aux == 0))) && (methaneLevelCritical == 0 || !(\result == 0))) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1))) && (methaneLevelCritical == 0 || !(\result == 0))))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methaneLevelCritical == 0) || \old(waterLevel) == waterLevel) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || methaneLevelCritical == 0) || tmp___0 == 0) || !(0 == systemActive))) && ((((((pumpRunning == \old(pumpRunning) && tmp == methaneLevelCritical) && pumpRunning == 0) && methAndRunningLastTime == 0) && (\old(waterLevel) == waterLevel || waterLevel == 1)) || !(\old(pumpRunning) == 0)) || !(0 == systemActive))) && (((((((!(\old(pumpRunning) == 0) && tmp == methaneLevelCritical) && pumpRunning == 0) && methAndRunningLastTime == 0) || (((pumpRunning == \old(pumpRunning) && !(\old(pumpRunning) == 0)) && tmp == methaneLevelCritical) && methAndRunningLastTime == 0)) || ((((pumpRunning == \old(pumpRunning) && tmp == methaneLevelCritical) && pumpRunning == 0) && methAndRunningLastTime == 0) && (!(\old(waterLevel) == 1) || waterLevel <= 1))) || 0 == systemActive) || (((((((((tmp == methaneLevelCritical && methAndRunningLastTime == 0) && (methaneLevelCritical == 0 || !(aux-isMethaneAlarm()-aux == 0))) && 2 <= waterLevel) && (methaneLevelCritical == 0 || !(aux-isMethaneLevelCritical()-aux == 0))) && (methaneLevelCritical == 0 || !(\result == 0))) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1))) && (methaneLevelCritical == 0 || !(\result == 0))))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methaneLevelCritical == 0) || \old(waterLevel) == waterLevel) || waterLevel == 1) [2022-11-19 08:07:59,146 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((\old(pumpRunning) == 0 || 0 == systemActive) || !(methAndRunningLastTime == 0)) && ((\old(pumpRunning) == 0 || !(methaneLevelCritical == 0)) || 0 == systemActive)) && ((((pumpRunning == 0 && 2 <= waterLevel) && aux-isMethaneAlarm()-aux == methaneLevelCritical) || !(\old(pumpRunning) == 0)) || 0 == systemActive) [2022-11-19 08:07:59,147 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !(\old(pumpRunning) == 0) && 0 == systemActive [2022-11-19 08:07:59,173 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/witness.graphml [2022-11-19 08:07:59,173 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-19 08:07:59,173 INFO L158 Benchmark]: Toolchain (without parser) took 72126.27ms. Allocated memory was 90.2MB in the beginning and 654.3MB in the end (delta: 564.1MB). Free memory was 52.3MB in the beginning and 570.6MB in the end (delta: -518.3MB). Peak memory consumption was 45.1MB. Max. memory is 16.1GB. [2022-11-19 08:07:59,174 INFO L158 Benchmark]: CDTParser took 0.26ms. Allocated memory is still 90.2MB. Free memory is still 69.6MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-19 08:07:59,174 INFO L158 Benchmark]: CACSL2BoogieTranslator took 463.49ms. Allocated memory was 90.2MB in the beginning and 117.4MB in the end (delta: 27.3MB). Free memory was 52.1MB in the beginning and 85.8MB in the end (delta: -33.8MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-19 08:07:59,174 INFO L158 Benchmark]: Boogie Procedure Inliner took 49.96ms. Allocated memory is still 117.4MB. Free memory was 85.8MB in the beginning and 83.2MB in the end (delta: 2.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-19 08:07:59,175 INFO L158 Benchmark]: Boogie Preprocessor took 33.91ms. Allocated memory is still 117.4MB. Free memory was 83.2MB in the beginning and 81.7MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-19 08:07:59,175 INFO L158 Benchmark]: RCFGBuilder took 715.57ms. Allocated memory is still 117.4MB. Free memory was 81.7MB in the beginning and 54.8MB in the end (delta: 26.8MB). Peak memory consumption was 27.3MB. Max. memory is 16.1GB. [2022-11-19 08:07:59,176 INFO L158 Benchmark]: TraceAbstraction took 70778.35ms. Allocated memory was 117.4MB in the beginning and 654.3MB in the end (delta: 536.9MB). Free memory was 54.4MB in the beginning and 576.9MB in the end (delta: -522.5MB). Peak memory consumption was 370.1MB. Max. memory is 16.1GB. [2022-11-19 08:07:59,176 INFO L158 Benchmark]: Witness Printer took 74.73ms. Allocated memory is still 654.3MB. Free memory was 576.9MB in the beginning and 570.6MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-19 08:07:59,178 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.26ms. Allocated memory is still 90.2MB. Free memory is still 69.6MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 463.49ms. Allocated memory was 90.2MB in the beginning and 117.4MB in the end (delta: 27.3MB). Free memory was 52.1MB in the beginning and 85.8MB in the end (delta: -33.8MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 49.96ms. Allocated memory is still 117.4MB. Free memory was 85.8MB in the beginning and 83.2MB in the end (delta: 2.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 33.91ms. Allocated memory is still 117.4MB. Free memory was 83.2MB in the beginning and 81.7MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 715.57ms. Allocated memory is still 117.4MB. Free memory was 81.7MB in the beginning and 54.8MB in the end (delta: 26.8MB). Peak memory consumption was 27.3MB. Max. memory is 16.1GB. * TraceAbstraction took 70778.35ms. Allocated memory was 117.4MB in the beginning and 654.3MB in the end (delta: 536.9MB). Free memory was 54.4MB in the beginning and 576.9MB in the end (delta: -522.5MB). Peak memory consumption was 370.1MB. Max. memory is 16.1GB. * Witness Printer took 74.73ms. Allocated memory is still 654.3MB. Free memory was 576.9MB in the beginning and 570.6MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 440]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 80 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 70.7s, OverallIterations: 10, TraceHistogramMax: 6, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 16.1s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 15.2s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 4230 SdHoareTripleChecker+Valid, 6.7s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 4202 mSDsluCounter, 4441 SdHoareTripleChecker+Invalid, 5.5s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3498 mSDsCounter, 2575 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 8575 IncrementalHoareTripleChecker+Invalid, 11150 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 2575 mSolverCounterUnsat, 943 mSDtfsCounter, 8575 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 977 GetRequests, 593 SyntacticMatches, 15 SemanticMatches, 369 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 22136 ImplicationChecksByTransitivity, 26.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1853occurred in iteration=9, InterpolantAutomatonStates: 272, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.7s AutomataMinimizationTime, 10 MinimizatonAttempts, 1002 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 45 LocationsWithAnnotation, 2984 PreInvPairs, 3576 NumberOfFragments, 2166 HoareAnnotationTreeSize, 2984 FomulaSimplifications, 11308 FormulaSimplificationTreeSizeReduction, 3.4s HoareSimplificationTime, 45 FomulaSimplificationsInter, 108066 FormulaSimplificationTreeSizeReductionInter, 11.6s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 4.4s InterpolantComputationTime, 839 NumberOfCodeBlocks, 839 NumberOfCodeBlocksAsserted, 13 NumberOfCheckSat, 989 ConstructedInterpolants, 0 QuantifiedInterpolants, 2448 SizeOfPredicates, 25 NumberOfNonLiveVariables, 1204 ConjunctsInSsa, 95 ConjunctsInUnsatCore, 15 InterpolantComputations, 8 PerfectInterpolantSequences, 500/550 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 226]: Loop Invariant Derived loop invariant: (((\old(pumpRunning) == 0 || 0 == systemActive) || !(methAndRunningLastTime == 0)) && ((\old(pumpRunning) == 0 || !(methaneLevelCritical == 0)) || 0 == systemActive)) && ((((pumpRunning == 0 && 2 <= waterLevel) && aux-isMethaneAlarm()-aux == methaneLevelCritical) || !(\old(pumpRunning) == 0)) || 0 == systemActive) - InvariantResult [Line: 671]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 376]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 589]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 104]: Loop Invariant Derived loop invariant: (((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(methaneLevelCritical == 0)) && (((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((!(\old(pumpRunning) == 0) || !(0 == systemActive)) || (pumpRunning == 0 && (\old(waterLevel) == waterLevel || waterLevel == 1)))) && (((!(\old(methAndRunningLastTime) == 0) || \old(waterLevel) == waterLevel) || 0 == systemActive) || !(2 <= \old(waterLevel)))) && ((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || 0 == systemActive)) && ((pumpRunning == \old(pumpRunning) && (\old(waterLevel) == waterLevel || waterLevel == 1)) || 0 == systemActive) - InvariantResult [Line: 344]: Loop Invariant Derived loop invariant: (((pumpRunning == 0 && tmp == 1) && splverifierCounter == 0) && !(0 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && splverifierCounter == 0) - InvariantResult [Line: 377]: Loop Invariant Derived loop invariant: ((((methAndRunningLastTime == 0 && tmp == 1) && splverifierCounter == 0) && !(0 == systemActive)) || (((!(methaneLevelCritical == 0) && tmp == 1) && splverifierCounter == 0) && !(0 == systemActive))) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && splverifierCounter == 0) - InvariantResult [Line: 166]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || 0 == systemActive) && ((pumpRunning == \old(pumpRunning) || !(methaneLevelCritical == 0)) || 0 == systemActive)) && ((pumpRunning == \old(pumpRunning) || 0 == systemActive) || !(methAndRunningLastTime == 0)) - InvariantResult [Line: 462]: Loop Invariant Derived loop invariant: (((((((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(methaneLevelCritical == 0)) && (((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || ((((tmp == methaneLevelCritical && 2 <= waterLevel) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || (((pumpRunning == \old(pumpRunning) && tmp == methaneLevelCritical) && pumpRunning == 0) && (!(\old(waterLevel) == 1) || waterLevel <= 1))) || 0 == systemActive)) && (((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(\old(pumpRunning) == 1)) || 0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || ((((tmp == methaneLevelCritical && 2 <= waterLevel) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || \old(waterLevel) == waterLevel) || waterLevel == 1)) && ((((((!(\old(pumpRunning) == 0) && tmp == methaneLevelCritical) && pumpRunning == 0) || ((pumpRunning == \old(pumpRunning) && !(\old(pumpRunning) == 0)) && tmp == methaneLevelCritical)) || ((((tmp == methaneLevelCritical && 2 <= waterLevel) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || (((pumpRunning == \old(pumpRunning) && tmp == methaneLevelCritical) && pumpRunning == 0) && (!(\old(waterLevel) == 1) || waterLevel <= 1))) || 0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || ((((tmp == methaneLevelCritical && 2 <= waterLevel) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || \old(waterLevel) == waterLevel) || !(2 <= \old(waterLevel)))) && (((methaneLevelCritical == 0 || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) || (pumpRunning == 0 && !(tmp == 0))) || 0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methaneLevelCritical == 0) || \old(waterLevel) == waterLevel) || waterLevel == 1)) && ((!(\old(pumpRunning) == 0) || !(0 == systemActive)) || ((tmp == methaneLevelCritical && pumpRunning == 0) && (\old(waterLevel) == waterLevel || waterLevel == 1))) - InvariantResult [Line: 454]: Loop Invariant Derived loop invariant: ((((((((((methaneLevelCritical == 0 || (((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && tmp___0 == 0)) || 0 == systemActive) || ((pumpRunning == 0 && !(tmp == 0)) && tmp___0 == 0)) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (pumpRunning == 0 && !(methaneLevelCritical == 0))) || (methaneLevelCritical == 0 && pumpRunning == 1)) || \old(waterLevel) == waterLevel) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || \old(waterLevel) == waterLevel) || waterLevel == 1) || (((((((((tmp == methaneLevelCritical && methAndRunningLastTime == 0) && (methaneLevelCritical == 0 || !(aux-isMethaneAlarm()-aux == 0))) && 2 <= waterLevel) && (methaneLevelCritical == 0 || !(aux-isMethaneLevelCritical()-aux == 0))) && (methaneLevelCritical == 0 || !(\result == 0))) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1))) && (methaneLevelCritical == 0 || !(\result == 0))))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methaneLevelCritical == 0) || \old(waterLevel) == waterLevel) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || methaneLevelCritical == 0) || tmp___0 == 0) || !(0 == systemActive))) && ((((((pumpRunning == \old(pumpRunning) && tmp == methaneLevelCritical) && pumpRunning == 0) && methAndRunningLastTime == 0) && (\old(waterLevel) == waterLevel || waterLevel == 1)) || !(\old(pumpRunning) == 0)) || !(0 == systemActive))) && (((((((!(\old(pumpRunning) == 0) && tmp == methaneLevelCritical) && pumpRunning == 0) && methAndRunningLastTime == 0) || (((pumpRunning == \old(pumpRunning) && !(\old(pumpRunning) == 0)) && tmp == methaneLevelCritical) && methAndRunningLastTime == 0)) || ((((pumpRunning == \old(pumpRunning) && tmp == methaneLevelCritical) && pumpRunning == 0) && methAndRunningLastTime == 0) && (!(\old(waterLevel) == 1) || waterLevel <= 1))) || 0 == systemActive) || (((((((((tmp == methaneLevelCritical && methAndRunningLastTime == 0) && (methaneLevelCritical == 0 || !(aux-isMethaneAlarm()-aux == 0))) && 2 <= waterLevel) && (methaneLevelCritical == 0 || !(aux-isMethaneLevelCritical()-aux == 0))) && (methaneLevelCritical == 0 || !(\result == 0))) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (pumpRunning == \old(pumpRunning) || methaneLevelCritical == 0)) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1))) && (methaneLevelCritical == 0 || !(\result == 0))))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methaneLevelCritical == 0) || \old(waterLevel) == waterLevel) || waterLevel == 1) - InvariantResult [Line: 188]: Loop Invariant Derived loop invariant: (((((((((pumpRunning == 0 && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel <= 1)) || (pumpRunning == \old(pumpRunning) && !(\old(pumpRunning) == 0))) || ((2 <= waterLevel && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && ((pumpRunning == 0 && !(methaneLevelCritical == 0)) || (methaneLevelCritical == 0 && pumpRunning == 1)))) || 0 == systemActive) && ((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || 0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (methAndRunningLastTime == 0 && (\old(waterLevel) == waterLevel || waterLevel == 1))) || (pumpRunning == 0 && !(methaneLevelCritical == 0))) || (methaneLevelCritical == 0 && pumpRunning == 1))) && (((methaneLevelCritical == 0 || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) || (pumpRunning == 0 && !(tmp == 0))) || 0 == systemActive)) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (methAndRunningLastTime == 0 && (\old(waterLevel) == waterLevel || waterLevel == 1))) || methaneLevelCritical == 0)) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || 2 <= waterLevel) || !(2 <= \old(waterLevel)))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 599]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 407]: Loop Invariant Derived loop invariant: ((tmp == 1 && splverifierCounter == 0) && !(0 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && splverifierCounter == 0) - InvariantResult [Line: 440]: Loop Invariant Derived loop invariant: !(\old(pumpRunning) == 0) && 0 == systemActive - InvariantResult [Line: 671]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0 && methAndRunningLastTime == 0) && methaneLevelCritical == 0) && tmp == 1) && waterLevel == 1) && !(0 == systemActive) - InvariantResult [Line: 367]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 140]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || 0 == systemActive) && ((pumpRunning == \old(pumpRunning) || !(methaneLevelCritical == 0)) || 0 == systemActive)) && ((pumpRunning == \old(pumpRunning) || 0 == systemActive) || !(methAndRunningLastTime == 0)) RESULT: Ultimate proved your program to be correct! [2022-11-19 08:07:59,215 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_8634d121-9f65-47ca-8815-62b221528172/bin/utaipan-I9t0OCRTmS/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE